-
Notifications
You must be signed in to change notification settings - Fork 793
Enabling Monkey Island Password Protection
itaymmguardicore edited this page Feb 7, 2019
·
4 revisions
By default, the Monkey Island doesn't require any form of authentication. To enable it, follow the following instructions:
Modify the file /monkey/monkey_island/cc/server_config.json to be of the following format:
{
"server_config": "password",
"user": "<YOUR USER>",
"hash": "<LOWER CASE HASH>"
}
- Replace
<YOUR USER>with a username of your choice. e.g.monkey - Replace
<LOWER CASE HASH>with a lower case SHA3-512 hash of your password. e.g.0123456789abcedf0123456789abcedf0123456789abcedf0123456789abcedf0123456789abcedf0123456789abcedf0123456789abcedf0123456789abcedf
Restart the Monkey Island process.
There are various libraries and services which allow to compute the SHA3-512. We'll list 2 tested services for convenience:
You can use this free online tool to calculate SHA3-512
The PyCrypto/PyCryptodome library for python allows SHA3-512 computation.
The following snippet calculates the SHA3-512 of the secret variable:
from Crypto.Hash import SHA3_512
h = SHA3_512.new()
h.update(secret)
print(h.hexdigest())